Skip to main content
Applied Materials Logo
Banner collage of diverse professionals: a smiling woman working on a laptop in an office, three colleagues walking and talking outdoors, a young man with a backpack smiling, and a lab technician in full protective gear inspecting a sample.

Architect - Directory and PKI Services

Apply
Job ID
R2518794
Date posted
12/04/2025
Location
Austin, TX
Category
Information Technology

Who We Are

Applied Materials is a global leader in materials engineering solutions used to produce virtually every new chip and advanced display in the world. We design, build and service cutting-edge equipment that helps our customers manufacture display and semiconductor chips – the brains of devices we use every day. As the foundation of the global electronics industry, Applied enables the exciting technologies that literally connect our world – like AI and IoT. If you want to push the boundaries of materials science and engineering to create next generation technology, join us to deliver material innovation that changes the world. 

What We Offer

Salary:

$132,000.00 - $181,500.00

Location:

Austin,TX, Toronto,CAN

You’ll benefit from a supportive work culture that encourages you to learn, develop, and grow your career as you take on challenges and drive innovative solutions for our customers. We empower our team to push the boundaries of what is possible—while learning every day in a supportive leading global company. Visit our Careers website to learn more. 

At Applied Materials, we care about the health and wellbeing of our employees. We’re committed to providing programs and support that encourage personal and professional growth and care for you at work, at home, or wherever you may go. Learn more about our benefits

Key Responsibilities

  • Design and implement scalable, secure AD and LDAP directory services for global enterprise environments.

  • Integrate AD/LDAP and PKI with cloud identity platforms such as Azure AD, AWS IAM, and MFA solutions(e.g security key, passkey etc.).

  • Perform regular maintenance, health checks, and performance tuning of AD, LDAP, and PKI systems.

  • Ensure high availability and disaster recovery readiness for identity infrastructure.

  • Troubleshoot complex issues including replication, authentication failures, and certificate errors.

  • Architect and manage internal PKI infrastructure including CA, RA, CRL, OCSP, and HSM integrations.

  • Define trust strategies and governance models for Certification Authorities (CAs).

  • Develop and maintain Certificate Policy and Certificate Practice Statements (CP/CPS).

  • Deploy and operate enterprise-grade PKI solutions including Microsoft ADCS and third-party platforms (e.g., DigiCert, Keyfactor, Venafi).

  •  Implement certificate lifecycle management (CLM) processes including issuance, renewal, revocation, and automation.

  • Support application integrations for TLS/SSL, S/MIME, 802.1x, Smartcards, and Code Signing.

  • Ensure secure key creation, storage, and usage aligned with cryptographic standards and compliance requirements.

  • Develop automation scripts using PowerShell, Python, or Ansible for identity and certificate operations.

  • Integrate PKI and credential management into CI/CD pipelines and DevSecOps workflows.

  • Understanding of IAM solutions including SSO, MFA, and role-based access control.

  • Work with federation protocols (SAML, OAuth, OpenID Connect) and tools like ADFS, Keycloak, PingFederate.

  • Align identity and certificate services with ISO 27001, SOC 2, NIST, and GDPR frameworks.

  • Support internal and external audits with documentation, logs, and remediation plans.

  • Track and report service metrics, SLAs, KPIs, and KRIs for operational excellence.

  • Collaborate with global teams including IAM, Infrastructure, Security, and Application owners.

  • Provide excellent customer service to users and internal stakeholders.

  • Contribute to change management and documentation using ITSM tools.

  • Mentor team members and lead cross-functional technical initiatives.

Required Skills & Experience

  • 5-7 years of experience in enterprise IT infrastructure with specialization in AD, LDAP, and PKI.

  • Strong understanding of AD core concepts: FSMO roles, OU structure, GPOs, replication, RODCs, schema, and security.

  • Hands-on experience with Microsoft ADCS and PKI components: Root CA, Issuing CA, OCSP, CRLs, SCEP/NDES.

  • Experience with LDAP directories (OpenLDAP, Oracle Directory Services) and integration with enterprise systems.

  • Proficiency in scripting (PowerShell, Python) and automation tools (Ansible, Terraform).

  • Familiarity with certificate deployment across platforms: Windows, Linux/Unix, Apache, Tomcat, Java Keystore, F5, Azure Key Vault.

  • Working knowledge of ITIL framework (Incident, Change, Problem Management).

  • Prior experience with service management tools (e.g., ServiceNow, Remedy).

  • Strong analytical and problem-solving skills with ability to resolve high-impact production incidents.

  • Experience working with global teams and customers.

Additional Skills(Nice to have)

  • Microsoft certifications (e.g., Azure cloud and security certifications).

  • Experience with cloud-native identity platforms (HYPR, Azure AD, AWS IAM).

  • Familiarity with PAM tools.

  • Experience with containerized environments and Kubernetes certificate management.

  • Understanding of cryptographic algorithms (symmetric/asymmetric), digital signatures, and key management.

Business expertise

  • Interprets internal/external business challenges and recommends best practices to improve products, processes or services
    Has a good understanding of industry standard frameworks (NIST, CIS etc.)

Leadership

  • May lead functional teams or projects with moderate resource requirements, risk, and/or complexity 

    Additional Information

    Time Type:

    Full time

    Employee Type:

    Assignee / Regular

    Travel:

    Yes, 10% of the Time

    Relocation Eligible:

    No

    The salary offered to a selected candidate will be based on multiple factors including location, hire grade, job-related knowledge, skills, experience, and with consideration of internal equity of our current team members. In addition to a comprehensive benefits package, candidates may be eligible for other forms of compensation such as participation in a bonus and a stock award program, as applicable.

    For all sales roles, the posted salary range is the Target Total Cash (TTC) range for the role, which is the sum of base salary and target bonus amount at 100% goal achievement.

    Applied Materials is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, national origin, citizenship, ancestry, religion, creed, sex, sexual orientation, gender identity, age, disability, veteran or military status, or any other basis prohibited by law.

    In addition, Applied endeavors to make our careers site accessible to all users. If you would like to contact us regarding accessibility of our website or need assistance completing the application process, please contact us via e-mail at Accommodations_Program@amat.com, or by calling our HR Direct Help Line at 877-612-7547, option 1, and following the prompts to speak to an HR Advisor. This contact is for accommodation requests only and cannot be used to inquire about the status of applications.

    Apply
    View Job Location